diff --git a/package-lock.json b/package-lock.json
index d9b8cfc..fdfa62d 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -468,9 +468,9 @@
       }
     },
     "crypto-js": {
-      "version": "3.1.9-1",
-      "resolved": "https://registry.npmjs.org/crypto-js/-/crypto-js-3.1.9-1.tgz",
-      "integrity": "sha1-/aGedh/Ad+Af+/3G6f38WeiAbNg="
+      "version": "4.2.0",
+      "resolved": "https://registry.npmjs.org/crypto-js/-/crypto-js-4.2.0.tgz",
+      "integrity": "sha512-KALDyEYgpY+Rlob/iriUtjV6d5Eq+Y191A5g4UqLAi8CyGP9N1+FdVbkc1SxKc2r4YAYqG8JzO2KGL+AizD70Q=="
     },
     "dashdash": {
       "version": "1.14.1",
@@ -1145,6 +1145,7 @@
           "version": "0.1.4",
           "bundled": true,
           "dev": true,
+          "optional": true,
           "requires": {
             "kind-of": "3.2.2",
             "longest": "1.0.1",
@@ -1955,7 +1956,8 @@
         "longest": {
           "version": "1.0.1",
           "bundled": true,
-          "dev": true
+          "dev": true,
+          "optional": true
         },
         "loose-envify": {
           "version": "1.3.1",
diff --git a/package.json b/package.json
index a296db0..c9b9020 100644
--- a/package.json
+++ b/package.json
@@ -57,7 +57,7 @@
     "typescript": "2.4.2"
   },
   "dependencies": {
-    "crypto-js": "3.1.9-1",
+    "crypto-js": "4.2.0",
     "nan": "2.8.0",
     "node-gyp": "3.6.2"
   }